[vm, ffi] Don't read out-of-bounds when marshalling structs by value.

Switch the Windows ARM64 builds to use MSVC. Clang disagrees with itself about handling of small structs in variadic functions, allowing splitting between the last argument register and the stack as the callee but not as the caller.

TEST=ci
Cq-Include-Trybots: luci.dart.try:vm-ffi-android-debug-arm-try,vm-ffi-android-debug-arm64c-try,vm-ffi-android-release-arm-try,vm-ffi-android-release-arm64c-try,vm-ffi-qemu-linux-release-arm-try,vm-linux-release-arm64-try,vm-mac-debug-arm64-try,vm-mac-release-arm64-try,vm-win-debug-arm64-try,vm-win-release-arm64-try,vm-ffi-qemu-linux-release-riscv64-try,vm-linux-debug-ia32-try,vm-linux-release-ia32-try,vm-win-release-ia32-try,vm-linux-debug-x64-try,vm-linux-release-x64-try,vm-mac-debug-x64-try,vm-mac-release-x64-try,vm-win-debug-x64-try,vm-win-release-x64-try
Bug: #52644
Bug: #53829
Change-Id: I2fd6c40620a885479f11bb8528ca1e9df3948a2f
Reviewed-on: https://dart-review.googlesource.com/c/sdk/+/331209
Commit-Queue: Ryan Macnak <[email protected]>
Reviewed-by: Daco Harkes <[email protected]>
Reviewed-by: Siva Annamalai <[email protected]>

Author: rmacnak-google

runtime/bin/ffi_test/ffi_test_functions.cc

@@ -734,6 +734,23 @@ DART_EXPORT int64_t SumStruct9Uint8(Struct9Uint8 s9) {
   return s9.a0 + s9.a1 + s9.a2 + s9.a3 + s9.a4 + s9.a5 + s9.a6 + s9.a7 + s9.a8;
 }
 
+DART_EXPORT int64_t
+SumReturnStruct9Uint8(Struct9Uint8 (*callback)(Struct9Uint8*),
+                      Struct9Uint8* in) {
+  std::cout << "SumReturnStruct9Uint8 in (" << in->a0 << ", " << in->a1 << ", "
+            << in->a2 << ", " << in->a3 << ", " << in->a4 << ", " << in->a5
+            << ", " << in->a6 << ", " << in->a7 << ", " << in->a8 << ")\n";
+
+  Struct9Uint8 out = callback(in);
+
+  std::cout << "SumReturnStruct9Uint8 out (" << out.a0 << ", " << out.a1 << ", "
+            << out.a2 << ", " << out.a3 << ", " << out.a4 << ", " << out.a5
+            << ", " << out.a6 << ", " << out.a7 << ", " << out.a8 << ")\n";
+
+  return out.a0 + out.a1 + out.a2 + out.a3 + out.a4 + out.a5 + out.a6 + out.a7 +
+         out.a8;
+}
+
 // Allocates a multiple of the larest page size, so the last element of the
 // array is right at a page boundary. Explicitly allocate and make inaccessible
 // the next page to avoid flaky false-successes if the next page happens to be

runtime/vm/compiler/backend/flow_graph_compiler.cc

@@ -3292,6 +3292,13 @@ void FlowGraphCompiler::EmitNativeMove(
   if (src_payload_type.IsInt() && dst_payload_type.IsInt() &&
       (src_payload_size != src_container_size ||
        dst_payload_size != dst_container_size)) {
+    if (source.IsStack() && src_container_size > src_payload_size) {
+      // Shrink loads since all loads are extending.
+      return EmitNativeMove(
+          destination,
+          source.WithOtherNativeType(zone_, src_payload_type, src_payload_type),
+          temp);
+    }
     if (src_payload_size <= dst_payload_size &&
         src_container_size >= dst_container_size) {
       // The upper bits of the source are already properly sign or zero
@@ -3361,32 +3368,6 @@ void FlowGraphCompiler::EmitNativeMove(
     return;
   }
 
-#if defined(TARGET_ARCH_ARM) || defined(TARGET_ARCH_ARM64)
-  // Arm does not support sign extending from a memory location, x86 does.
-  if (sign_or_zero_extend && source.IsStack()) {
-    ASSERT(destination.IsRegisters());
-    const auto& intermediate = destination.WithOtherNativeType(
-        zone_, src_payload_type, src_container_type);
-    EmitNativeMove(intermediate, source, temp);
-    EmitNativeMove(destination, intermediate, temp);
-    return;
-  }
-#endif
-
-  // If we're not sign extending, and we're moving 8 or 16 bits into a
-  // register, upgrade the move to take upper bits of garbage from the
-  // source location. This is the same as leaving the previous garbage in
-  // there.
-  //
-  // TODO(40210): If our assemblers would support moving 1 and 2 bytes into
-  // registers, this code can be removed.
-  if (!sign_or_zero_extend && destination.IsRegisters() &&
-      destination.container_type().SizeInBytes() <= 2) {
-    ASSERT(source.payload_type().IsInt());
-    return EmitNativeMove(destination.WidenTo4Bytes(zone_),
-                          source.WidenTo4Bytes(zone_), temp);
-  }
-
   // Do the simple architecture specific moves.
   EmitNativeMoveArchitecture(destination, source);
 }
@@ -3405,7 +3386,17 @@ void FlowGraphCompiler::EmitMoveToNative(
   } else {
     const auto& src =
         compiler::ffi::NativeLocation::FromLocation(zone_, src_loc, src_type);
-    EmitNativeMove(dst, src, temp);
+    // Deal with sign mismatch caused by lack of kUnboxedUint64 representation.
+    if (src_type == kUnboxedInt64 &&
+        dst.container_type().AsPrimitive().representation() ==
+            compiler::ffi::kUint64) {
+      EmitNativeMove(dst,
+                     src.WithOtherNativeType(zone_, dst.container_type(),
+                                             dst.container_type()),
+                     temp);
+    } else {
+      EmitNativeMove(dst, src, temp);
+    }
   }
 }
 
@@ -3421,9 +3412,18 @@ void FlowGraphCompiler::EmitMoveFromNative(
       EmitNativeMove(dest_split, src.Split(zone_, 2, i), temp);
     }
   } else {
-    const auto& dest =
+    const auto& dst =
         compiler::ffi::NativeLocation::FromLocation(zone_, dst_loc, dst_type);
-    EmitNativeMove(dest, src, temp);
+    // Deal with sign mismatch caused by lack of kUnboxedUint64 representation.
+    if (dst_type == kUnboxedInt64 &&
+        src.container_type().AsPrimitive().representation() ==
+            compiler::ffi::kUint64) {
+      EmitNativeMove(dst.WithOtherNativeType(zone_, src.container_type(),
+                                             src.container_type()),
+                     src, temp);
+    } else {
+      EmitNativeMove(dst, src, temp);
+    }
   }
 }
 

runtime/vm/compiler/backend/flow_graph_compiler.h

@@ -945,6 +945,10 @@ class FlowGraphCompiler : public ValueObject {
   // Architecture specific implementation of simple native moves.
   void EmitNativeMoveArchitecture(const compiler::ffi::NativeLocation& dst,
                                   const compiler::ffi::NativeLocation& src);
+  void EmitNativeLoad(Register dst,
+                      Register base,
+                      intptr_t offset,
+                      compiler::ffi::PrimitiveType type);
 
   void EmitFrameEntry();
 

runtime/vm/compiler/backend/flow_graph_compiler_arm.cc

@@ -956,9 +956,9 @@ void FlowGraphCompiler::EmitNativeMoveArchitecture(
       const auto& dst = destination.AsRegisters();
       ASSERT(dst.num_regs() == 1);
       const auto dst_reg = dst.reg_at(0);
+      ASSERT(destination.container_type().SizeInBytes() <= 4);
       if (!sign_or_zero_extend) {
-        ASSERT(dst_size == 4);
-        __ mov(dst_reg, compiler::Operand(src_reg));
+        __ MoveRegister(dst_reg, src_reg);
       } else {
         if (src_payload_type.IsSigned()) {
           __ sbfx(dst_reg, src_reg, 0, src_size * kBitsPerByte);
@@ -977,8 +977,8 @@ void FlowGraphCompiler::EmitNativeMoveArchitecture(
       ASSERT(destination.IsStack());
       const auto& dst = destination.AsStack();
       ASSERT(!sign_or_zero_extend);
-      ASSERT(dst_size <= 4);
-      auto const op_size = BytesToOperandSize(dst_size);
+      auto const op_size =
+          BytesToOperandSize(destination.container_type().SizeInBytes());
       __ StoreToOffset(src.reg_at(0), dst.base_register(),
                        dst.offset_in_bytes(), op_size);
     }
@@ -1036,12 +1036,8 @@ void FlowGraphCompiler::EmitNativeMoveArchitecture(
       const auto& dst = destination.AsRegisters();
       ASSERT(dst.num_regs() == 1);
       const auto dst_reg = dst.reg_at(0);
-      ASSERT(!sign_or_zero_extend);
-      ASSERT(dst_size <= 4);
-      auto const op_size = BytesToOperandSize(dst_size);
-      __ LoadFromOffset(dst_reg, src.base_register(), src.offset_in_bytes(),
-                        op_size);
-
+      EmitNativeLoad(dst_reg, src.base_register(), src.offset_in_bytes(),
+                     src_payload_type.AsPrimitive().representation());
     } else if (destination.IsFpuRegisters()) {
       ASSERT(src_payload_type.Equals(dst_payload_type));
       ASSERT(src_payload_type.IsFloat());
@@ -1066,6 +1062,47 @@ void FlowGraphCompiler::EmitNativeMoveArchitecture(
   }
 }
 
+void FlowGraphCompiler::EmitNativeLoad(Register dst,
+                                       Register base,
+                                       intptr_t offset,
+                                       compiler::ffi::PrimitiveType type) {
+  switch (type) {
+    case compiler::ffi::kInt8:
+      __ LoadFromOffset(dst, base, offset, compiler::kByte);
+      break;
+    case compiler::ffi::kUint8:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedByte);
+      break;
+    case compiler::ffi::kInt16:
+      __ LoadFromOffset(dst, base, offset, compiler::kTwoBytes);
+      break;
+    case compiler::ffi::kUint16:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedTwoBytes);
+      break;
+    case compiler::ffi::kInt32:
+      __ LoadFromOffset(dst, base, offset, compiler::kFourBytes);
+      break;
+    case compiler::ffi::kUint32:
+    case compiler::ffi::kFloat:
+    case compiler::ffi::kHalfDouble:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedFourBytes);
+      break;
+
+    case compiler::ffi::kInt24:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedTwoBytes);
+      __ LoadFromOffset(TMP, base, offset + 2, compiler::kByte);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 16));
+      break;
+    case compiler::ffi::kUint24:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedTwoBytes);
+      __ LoadFromOffset(TMP, base, offset + 2, compiler::kUnsignedByte);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 16));
+      break;
+    default:
+      UNREACHABLE();
+  }
+}
+
 void FlowGraphCompiler::LoadBSSEntry(BSS::Relocation relocation,
                                      Register dst,
                                      Register tmp) {

runtime/vm/compiler/backend/flow_graph_compiler_arm64.cc

@@ -944,34 +944,14 @@ void FlowGraphCompiler::EmitNativeMoveArchitecture(
       const auto& dst = destination.AsRegisters();
       ASSERT(dst.num_regs() == 1);
       const auto dst_reg = dst.reg_at(0);
+      ASSERT(destination.container_type().SizeInBytes() <= 8);
       if (!sign_or_zero_extend) {
-        switch (dst_size) {
-          case 8:
-            __ mov(dst_reg, src_reg);
-            return;
-          case 4:
-            __ movw(dst_reg, src_reg);
-            return;
-          default:
-            UNIMPLEMENTED();
-        }
+        __ MoveRegister(dst_reg, src_reg);
       } else {
-        switch (src_payload_type.AsPrimitive().representation()) {
-          case compiler::ffi::kInt8:  // Sign extend operand.
-            __ sxtb(dst_reg, src_reg);
-            return;
-          case compiler::ffi::kInt16:
-            __ sxth(dst_reg, src_reg);
-            return;
-          case compiler::ffi::kUint8:  // Zero extend operand.
-            __ uxtb(dst_reg, src_reg);
-            return;
-          case compiler::ffi::kUint16:
-            __ uxth(dst_reg, src_reg);
-            return;
-          default:
-            // 32 to 64 bit is covered in IL by Representation conversions.
-            UNIMPLEMENTED();
+        if (src_payload_type.IsSigned()) {
+          __ sbfx(dst_reg, src_reg, 0, src_size * kBitsPerByte);
+        } else {
+          __ ubfx(dst_reg, src_reg, 0, src_size * kBitsPerByte);
         }
       }
 
@@ -983,7 +963,8 @@ void FlowGraphCompiler::EmitNativeMoveArchitecture(
       ASSERT(destination.IsStack());
       const auto& dst = destination.AsStack();
       ASSERT(!sign_or_zero_extend);
-      auto const op_size = BytesToOperandSize(dst_size);
+      auto const op_size =
+          BytesToOperandSize(destination.container_type().SizeInBytes());
       __ StoreToOffset(src.reg_at(0), dst.base_register(),
                        dst.offset_in_bytes(), op_size);
     }
@@ -1026,11 +1007,8 @@ void FlowGraphCompiler::EmitNativeMoveArchitecture(
       const auto& dst = destination.AsRegisters();
       ASSERT(dst.num_regs() == 1);
       const auto dst_reg = dst.reg_at(0);
-      ASSERT(!sign_or_zero_extend);
-      auto const op_size = BytesToOperandSize(dst_size);
-      __ LoadFromOffset(dst_reg, src.base_register(), src.offset_in_bytes(),
-                        op_size);
-
+      EmitNativeLoad(dst_reg, src.base_register(), src.offset_in_bytes(),
+                     src_payload_type.AsPrimitive().representation());
     } else if (destination.IsFpuRegisters()) {
       ASSERT(src_payload_type.Equals(dst_payload_type));
       ASSERT(src_payload_type.IsFloat());
@@ -1055,6 +1033,85 @@ void FlowGraphCompiler::EmitNativeMoveArchitecture(
   }
 }
 
+void FlowGraphCompiler::EmitNativeLoad(Register dst,
+                                       Register base,
+                                       intptr_t offset,
+                                       compiler::ffi::PrimitiveType type) {
+  switch (type) {
+    case compiler::ffi::kInt8:
+      __ LoadFromOffset(dst, base, offset, compiler::kByte);
+      break;
+    case compiler::ffi::kUint8:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedByte);
+      break;
+    case compiler::ffi::kInt16:
+      __ LoadFromOffset(dst, base, offset, compiler::kTwoBytes);
+      break;
+    case compiler::ffi::kUint16:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedTwoBytes);
+      break;
+    case compiler::ffi::kInt32:
+      __ LoadFromOffset(dst, base, offset, compiler::kFourBytes);
+      break;
+    case compiler::ffi::kUint32:
+    case compiler::ffi::kFloat:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedFourBytes);
+      break;
+    case compiler::ffi::kInt64:
+    case compiler::ffi::kUint64:
+    case compiler::ffi::kDouble:
+      __ LoadFromOffset(dst, base, offset, compiler::kEightBytes);
+      break;
+
+    case compiler::ffi::kInt24:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedTwoBytes);
+      __ LoadFromOffset(TMP, base, offset + 2, compiler::kByte);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 16));
+      break;
+    case compiler::ffi::kUint24:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedTwoBytes);
+      __ LoadFromOffset(TMP, base, offset + 2, compiler::kUnsignedByte);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 16));
+      break;
+    case compiler::ffi::kInt40:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedFourBytes);
+      __ LoadFromOffset(TMP, base, offset + 4, compiler::kByte);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 32));
+      break;
+    case compiler::ffi::kUint40:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedFourBytes);
+      __ LoadFromOffset(TMP, base, offset + 4, compiler::kUnsignedByte);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 32));
+      break;
+    case compiler::ffi::kInt48:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedFourBytes);
+      __ LoadFromOffset(TMP, base, offset + 4, compiler::kTwoBytes);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 32));
+      break;
+    case compiler::ffi::kUint48:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedFourBytes);
+      __ LoadFromOffset(TMP, base, offset + 4, compiler::kUnsignedTwoBytes);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 32));
+      break;
+    case compiler::ffi::kInt56:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedFourBytes);
+      __ LoadFromOffset(TMP, base, offset + 4, compiler::kUnsignedTwoBytes);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 32));
+      __ LoadFromOffset(TMP, base, offset + 6, compiler::kByte);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 48));
+      break;
+    case compiler::ffi::kUint56:
+      __ LoadFromOffset(dst, base, offset, compiler::kUnsignedFourBytes);
+      __ LoadFromOffset(TMP, base, offset + 4, compiler::kUnsignedTwoBytes);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 32));
+      __ LoadFromOffset(TMP, base, offset + 6, compiler::kUnsignedByte);
+      __ orr(dst, dst, compiler::Operand(TMP, LSL, 48));
+      break;
+    default:
+      UNREACHABLE();
+  }
+}
+
 void FlowGraphCompiler::LoadBSSEntry(BSS::Relocation relocation,
                                      Register dst,
                                      Register tmp) {